Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2019-09-26Cisco TalosEdmund Brumaghin
Divergent: "Fileless" NodeJS Malware Burrows Deep Within the Host
Divergent
2019-08-28Cisco TalosEdmund Brumaghin, Holger Unterbrink
RAT Ratatouille: Backdooring PCs with leaked RATs
Orcus RAT
2019-07-15Cisco TalosEdmund Brumaghin
SWEED: Exposing years of Agent Tesla campaigns
Agent Tesla Formbook Loki Password Stealer (PWS) SWEED
2019-05-23Cisco TalosEdmund Brumaghin, Nick Biasini
Sorpresa! JasperLoader targets Italy with a new bag of tricks
JasperLoader
2019-04-25CiscoAndrew Williams, Edmund Brumaghin, Nick Biasini
JasperLoader Emerges, Targets Italy with Gootkit Banking Trojan
JasperLoader
2019-04-15TalosEdmund Brumaghin, Holger Unterbrink
New HawkEye Reborn Variant Emerges Following Ownership Change
HawkEye Keylogger
2019-02-20Cisco TalosEdmund Brumaghin, Matthew Molyett, Nick Biasini
Combing Through Brushaloader Amid Massive Detection Uptick
BrushaLoader
2019-01-30Cisco TalosEdmund Brumaghin, Jungsoo An, Paul Rascagnères
Fake Cisco Job Posting Targets Korean Candidates
CoreDN JessieConTea
2018-11-08Cisco TalosEdmund Brumaghin, Paul Rascagnères, Vitor Ventura, Warren Mercer
Metamorfo Banking Trojan Keeps Its Sights on Brazil
Metamorfo
2018-09-26CiscoEdmund Brumaghin
VPNFilter III: More Tools for the Swiss Army Knife of Malware
VPNFilter
2018-08-22Cisco TalosEdmund Brumaghin, Eric Kuhla, Holger Unterbrink, Lilia Gonzalez Medina
Picking Apart Remcos Botnet-In-A-Box
Remcos
2018-06-26Cisco TalosAndrew Williams, Earl Carter, Edmund Brumaghin
Files Cannot Be Decrypted? Challenge Accepted. Talos Releases ThanatosDecryptor
Thanatos Ransomware
2018-03-06Cisco TalosAdam Weller, Edmund Brumaghin, Holger Unterbrink
Gozi ISFB Remains Active in 2018, Leverages "Dark Cloud" Botnet For Distribution
ISFB
2017-11-02TalosEarl Carter, Edmund Brumaghin, Emmanuel Tacheau
Poisoning the Well: Banking Trojan Targets Google Search Results
PandaBanker
2017-10-11Cisco Talos@Simpo13, Colin Grady, Dave Maynor, Edmund Brumaghin
Spoofed SEC Emails Distribute Evolved DNSMessenger
DNSMessenger
2017-09-20Cisco TalosCraig Williams, Earl Carter, Edmund Brumaghin, Matthew Molyett, Matthew Olney, Paul Rascagnères, Warren Mercer
CCleaner Command and Control Causes Concern
CCleaner Backdoor
2017-09-18Cisco TalosCraig Williams, Edmund Brumaghin, Matthew Molyett, Ross Gibb, Warren Mercer
CCleanup: A Vast Number of Machines at Risk
CCleaner Backdoor
2017-03-20Cisco TalosEarl Carter, Edmund Brumaghin, Jaeson Schultz, Sean Baird
Necurs Diversifies Its Portfolio
Necurs
2017-03-02CiscoColin Grady, Edmund Brumaghin
Covert Channels and Poor Decisions: The Tale of DNSMessenger
DNSMessenger
2016-12-07Cisco TalosBen Baker, Edmund Brumaghin, Jonas Zaddach, Mariano Graziano
Floki Bot Strikes, Talos and Flashpoint Respond
FlokiBot
2016-09-29Cisco TalosEdmund Brumaghin
Want Tofsee My Pictures? A Botnet Gets Aggressive
Tofsee
2016-09-27Talos IntelligenceEdmund Brumaghin
Threat Spotlight: GozNym
Nymaim
2016-07-11TalosEdmund Brumaghin, Warren Mercer
When Paying Out Doesn't Pay Off
Ranscam